Vulnerabilities > Drupal > Drupal E Commerce Module
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2006-08-27 | CVE-2006-4360 | Cross-Site Scripting vulnerability in Drupal E-Commerce Module 4.7 Cross-site scripting (XSS) vulnerability in E-commerce 4.7 for Drupal before file.module 1.37.2.4 (20060812) allows remote authenticated users with the "create products" permission to inject arbitrary web script or HTML via unspecified vectors. network drupal | 3.5 |